I brought this discussion to the local forum as well. Indeed, all hackers that I understand take advantage of user weaknesses. So the best we can do to prevent, some suggestions when discussing in local forums could be maybe using AdBlock, premium VPN, or DNS settings.
~snip~
How will a VPN or an alternative DNS help you not to install a fake update? The only thing that makes sense is that you might be able to avoid an attack that is geolocated, but also by using a VPN, you can be shown ads that you otherwise wouldn't be able to see with your IP address.
Don't you read all the posts above? In fact, NotATether gave the most needed answer on this topic. It doesn’t matter which browser you want to update; it doesn’t matter which program will beg you to update; the important thing is that Windows allows automatic installation and unpacking of archives without the user’s permission. When working with Linux, you install the necessary sources for updates, and updates occur only from authorized sources, which to some extent protects the user.
When we talk about browsers, each one has (or should have) options for downloading files in its settings, and in these settings you can set whether you want the browser to ask you for permission for every download or whether you want that process to be automatic. It has never happened to me that Windows did something by itself.